Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
485
Views
5
Helpful
2
Replies

i am getting mad and tired , Please help

Tamer Salem
Beginner
Beginner

‎01-16-2011 07:55 AM

hi all ,

I am getting tired traing for about 4 days to setup bandwidth for my network ,

it works fine when policing the entire interface bandwidth ,

but when i try to go more advanced , its simply dont work as it should .

i try to match destination MAC Address in class map , then police the traffic for it

==========================================================

  Policy Map IPOLICY
    Class TOPTALKERS
     police cir 240000 bc 7500 be 7500
       conform-action transmit
       exceed-action drop
       violate-action drop
    Class TRAFFIC_30
      Bandwidth 10 (kbps) Max Threshold 64 (packets)
     police cir 64000 bc 2000 be 2000
       conform-action transmit
       exceed-action drop
       violate-action drop

  Policy Map POLICE-TRAFFIC
    Class GARBAGE
      drop
    Class HTTP-TRAFFIC
     police cir 1200000 bc 37500 be 37500
       conform-action transmit
       exceed-action drop
       violate-action drop

#sh class
#sh class-map
Class Map match-any TRAFFIC_30 (id 6)
   Match access-group  1101
   Match access-group  710

Class Map match-any TOPTALKERS (id 1)
   Match protocol http url "*.rar|*.wmv|*.exe|*.m4a|*.3gp|*.mov|*.zip|*.asf|*.mp4"

Class Map match-any class-default (id 0)
   Match any

Class Map match-any GARBAGE (id 2)
   Match protocol edonkey
   Match protocol directconnect
   Match protocol bittorrent
   Match protocol gnutella
   Match protocol gopher
   Match protocol xwindows
   Match protocol fasttrack

Class Map match-all HTTP-TRAFFIC (id 3)
   Match protocol http
   Match not access-group  110

#sh access
#sh access-li
#sh access-lists
Bridge address access list 710
    permit 0025.86f6.86f6   0000.0000.0000 (500 matches)
Extended Bridging access list 1101
    permit 0000.0000.0000 ffff.ffff.ffff 0025.86f6.86f6 0000.0000.0000
Extended IP access list 110
    10 permit ip any 192.168.10.0 0.0.0.15

===============================================================

the pc with the MAC Address 0025.86f6.86f6 Never Ever Slow down as well as any other PC try to download some thing

the the only thing that I am sure it works , that the Bandwidth of my network become 1200000 bits/s (about 150KB/s)

some one please help me befoure i nuclear my cisco routers

Labels:
0 Helpful
2 Replies 2

antasson
Beginner
Beginner

‎01-17-2011 09:29 AM

Hello Tamer,

at first I'd start posting the inquiry to the proper forum to have more chances to reach out the right audience. MPLS doesn't seems a fit for your question, indeed.

Secondly, please put the show tech of the device and the the interface name you applied the policy map to.

Thanks,

Antonio

Nagaraja Thanthry
Cisco Employee
Cisco Employee

‎01-17-2011 10:40 AM

Hello,

Can you try the following:

access-list rate-limit 151 0025.86f6.86f6

Class Map match-any TRAFFIC_30 (id 6)
  no Match access-group  1101
  no Match access-group  710

  match access-group 151

http://www.cisco.com/en/US/docs/ios/12_2/qos/command/reference/qrfcmd1.html

The rate-limit access-list matches specific mac address and limits the traffic accordingly. Hope this helps.

Regards,

NT

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Recognize Your Peers
Spotlight Award Nomination
Customers Also Viewed These Support Documents